642-062 Q & A / Study Guide / Testing Engine

Best CCNA Training and CCNA Certification and more Cisco exams log in to Certkingdom.com

---

QUESTION 1
Which two of these are features of the Cisco 2851 Integrated Services Router, but not features of
Cisco 1800 Series Integrated Services Routers? (Choose two.) Select 2 response(s).

A. 32-Gbps switching bus
B. built-in wireless module
C. Cisco SDM for simplified management
D. two integrated 10/100/1000 Ethernet ports
E. Power over Ethernet support for 10/100 Ethernet ports
F. slots dedicated to Cisco High-Density Analog and Digital Extension Module for Voice and Fax

Answer: D,F

---

QUESTION 2
Which two of these features can be managed by the Cisco SDM application? (Choose two.) Select
2 response(s).

A. VoIP
B. HSRP
C. IPsec VPN
D. QoS policy
E. PoE power consumption

Answer: C,D

---

QUESTION 3
Your network includes a Cisco Catalyst 6500 Switch with an FWSM module. You need Layer 2
connectivity between two routers located on different firewall interfaces. Which feature will you
need in order to provide this connectivity? Select the best response.

A. router mode
B. virtual firewall
C. stateful firewall
D. transparent mode
E. two FWSM modules in failover mode

Answer: D

---

QUESTION 4
Which supervisor module can be used in the Cisco Catalyst 4510R chassis? Select the best
response.

A. Supervisor II-Plus
B. Supervisor IV
C. Supervisor V-10GE
D. Supervisor II-TS

Answer: C

---

QUESTION 5
Which two tools can you use to manage and configure a Cisco Catalyst Express 500 Series
Switch? (Choose two.)
Select 2 response(s).

A. CLI
B. Cisco Network Assistant
C. Cisco Smartports Advisor
D. Device Manager with embedded GUI

Answer: B,D

---

Best CCNA Training and CCNA Certification and more Cisco exams log in to Certkingdom.com

640-864 Q & A / Study Guide

Best CCNA Training and CCNA Certification and more Cisco exams log in to Certkingdom.com

---

QUESTION 1
Which consideration is the most important for the network designer when considering IP routing?

A. convergence
B. scalability
C. on-demand routing
D. redistribution

Answer: B

---

QUESTION 2
You want to gather as much detail as possible during a network audit, to data time stamping
across a large number of interfaces, customized include according to interface, with a minimal
impact on the network devices themselves. Which tool would you use to meet these
requirements?

A. RMON
B. SNMFV3
C. NetFlow
D. Cisco Discovery Protocol

Answer: D

---

QUESTION 3
DataQuirk is a web-based medical transcription company for exotic-animal veterinarians. The
company recently added a third ISP for international business. They are organizing the enterprise
network into a fully operational Enterprise Edge.
To which two modules will the three ISPs be directly related? (Choose two)

A. PSTN
B. E- Commerce
C. WAN/MAN
D. Edge Distribution
E. Internet Connectivity
F. Remote Access VPN

Answer: B,E

---

QUESTION 4
Which two of these practices are considered to be best practices when designing the access layer
for the enterprise campus? (Choose two)

A. Implement all of the service (QoS, security, STP, and so on) in the access layer, offloading the
work from the distribution and core layers.
B. Always use a Spanning Tree Protocol; preferred is Rapid PVST+.
C. Use automatic VLAN pruning to prune unused VLANs from trunked interface to avoid broadcast
propagation.
D. Avoid wasted processing by disabling STP where loops are not possible.
E. Use VTP transparent mode to decrease the potential for operational error

Answer: B,C

---

QUESTION 5
With deterministic Wireless LAN Controller redundancy design, the different options available to
the designer have their own strengths. Which one of these statements is an example of such a
strength?

A. Dynamic load balancing, or salt-and-pepper access point design, avoids the potential impact of
oversubscription on aggregate network performance.
B. N+N redundancy configuration allows logically grouping access points on controllers to
minimize intercontroller roaming events.
C. N+N+1 redundancy configuration has the least impact to system management because all of
the controllers are collocated in an NOC or data center
D. N+1 redundancy configuration uses Layer 3 intercontroller roaming, maintaining traffic on the
same subnet for more efficiency.

Answer: B

---

QUESTION 6
Which of these statements is true concerning the data center access layer design?

A. The access layer in the data center is typically built at Layer 3, which allows for better shaping
of services across multiple servers.
B. With Layer 2 access, the default gateway for the servers can be configured at the access or
aggregation layer.
C. A dual-homing NIC requires a VLAN or trunk between the two access switches to support the
dual IP address on the two server links to two separate switches.
D. The access layer is normally not required, as dual homing is standard from the servers to the
aggregation layer.

Answer: B

---

QUESTION 7
Which one of these statements should the designer keep in mind when considering the advanced
routing features?

A. one-way router redistribution avoids the requirement for state or default routes.
B. Redistribution, summarization, and filtering are most often applied between the campus core
and enterprise edge.
C. Filtering only occurs on the routing domain boundary using redistribution.
D. Summarize routes at the core toward the distribution layer.
E. The hierarchical flexibility of IPv6 addressing avoids the requirements for routing traffic
reduction using aggregation.

Answer: B

---

QUESTION 8
Which two statements about designing the Data Center Access layer are correct? (Choose two)

A. Multiport NIC servers should each have their own IP address
B. Layer 3 connectivity should never be used in the access layer
C. Layer 2 connectivity is primarily implemented in the access layer
D. Multiport NIC servers should never be used in the access layer
E. Layer 2 clustering implementation requires servers to be Layer 2 adjacent

Answer: C,E

---

QUESTION 9
Which IPv6 feature enables routing to distribute connection requests to the nearest content
server?

A. Link-local
B. Site-local
C. Anycast
D. Multicast
E. Global aggregatable

Answer: C

---

QUESTION 10
Which one of these statements is true about addressing redundancy within the WAN
environment?

A. The reliability and speed of DSL allow for cost savings by not including redundant links.
B. CAMDM and dark fiber offer advanced redundancy features such as automatic backup and
repair mechanism to cope system faults.
C. An SLA is one way to eliminate the need for redundancy.
D. The failure of a single SONET/SDH link or network element does not lead to failure of the entire
network.

Answer: D

---

Best CCNA Training and CCNA Certification and more Cisco exams log in to Certkingdom.com

640-863 Q & A / Study Guide

Best CCNA Training and CCNA Certification and more Cisco exams log in to Certkingdom.com

---

QUESTION 1
A Cisco Self-Defending Network has been installed, but DoS attacks are still being directed at ecommerce
hosts. The connection rate at the Internet firewall was limited, but the problem persists.
What more can be done?

A. Move the servers to the DMZ.
B. Install all relevant operating system patches.
C. Block the servers' TCP traffic at the Internet firewall.
D. Block the servers' UDP traffic at the Internet firewall.

Answer: B

---

QUESTION 2
RST Corporation is planning to upgrade its current network. The chief technology officer has
supplied a topology diagram and an IP addressing scheme of the current network during an
interview.
RST has been growing at about twenty percent per year. It has been difficult to maintain customer
support at a satisfactory level. Therefore, the RST board has met with and directed the chief
technology officer to look into network improvements.
Which two items are most relevant in documenting RST's business requirements? (Choose two.)

A. existing network topologies
B. network performance requirements
C. the IP addresses assigned by the ISP
D. improved customer support requirements
E. projected growth estimates

Answer: D,E

---

QUESTION 3
Refer to the exhibit. Which module is the Enterprise WAN module?


A. Enterprise A
B. Enterprise B
C. Enterprise F
D. Enterprise C
E. Enterprise D
F. Enterprise E

Answer: D

---

QUESTION 4
Which two of these best describe the implementation of a WAN Backup design over the Internet?
(Choose two.)

A. a best-effort method
B. bandwidth guaranteed based on interface configuration
C. designed as an alternative to a failed WAN connection
D. implemented with a point-to-point logical link using a Layer 2 tunnel
E. requires no ISP coordination or involvement

Answer: A,C

---

QUESTION 5
Which two design criteria require VLANs in a proposed solution? (Choose two.)

A. the segmenting of collision domains
B. a limited corporate budget
C. the use of multivendor equipment
D. security between departments
E. video streaming on the LAN
F. the segmenting of broadcast domains

Answer: D,F

---

QUESTION 6
Which two methods are used to enhance VPN performance on Cisco ISRs? (Choose two.)

A. SSL Acceleration Network Module
B. VPN Shared Port Adapter
C. VPN Acceleration Module
D. high-performance VPN encryption AIM
E. VPN Service Adapter
F. built-in hardware-based encryption acceleration

Answer: D,F

---

QUESTION 7
Which three factors best justify WAN link redundancy between geographically dispersed sites?
(Choose three.)

A. high expense of transmitting data
B. important traffic flows
C. excessive packet transmission rate
D. uncertain reliability
E. high link utilization
F. lack of speed

Answer: B,D,F

---

QUESTION 8
Which three pieces of information should be documented for each step of each phase in a design
implementation plan? (Choose three.)

A. easy guidelines in case of failure
B. estimated rollback time in case of failure
C. simple implementation guidelines
D. estimated implementation time
E. design document references
F. step description

Answer: D,E,F

---

QUESTION 9
The topology map in the draft design document should cover which two layers of the OSI model?
(Choose two.)

A. session
B. data link
C. transport
D. application
E. physical
F. network

Answer: E,F

---

QUESTION 10
In a Cisco CatOS switch, what is the recommended practice when configuring switch-to-switch
intercommunications to carry multiple VLANs for Dynamic Trunk Protocol?

A. auto toauto_negotiate
B. disable Dynamic Trunk Protocol when operating in the distribution layer
C. auto toauto_no_negotiate
D. desirable todesirable_no_negotiate
E. on toon_negotiate
F. desirable todesirable_negotiate

Answer: F

Best CCNA Training and CCNA Certification and more Cisco exams log in to Certkingdom.com

640-822 Q & A / Study Guide

---

QUESTION 1
After the router interfaces shown in the diagram have been configured, it is discovered that hosts
in the Branch LAN cannot access the Internet. Further testing reveals additional connectivity
issues. What will fix this problem?


A. Change the address of the HQ router LAN interface.
B. Change the subnet mask of the HQ router LAN interface.
C. Change the address of the Branch router LAN interface.
D. Change the address of the HQ router interface to the Internet.
E. Change the address of the Branch router WAN interface.
F. Change the subnet mask of the HQ router interface to the Internet.

Answer: E

---

QUESTION 2
Refer to the graphic. A Cisco router and a Catalyst switch are connected as shown. The technician
is working on a computer that is connected to the management console of the switch. In order to
configure the default gateway for the switch, the technician needs to learn the IP address of the
attached router interface. Which IOS command will provide this information in the absence of
Layer 3 connectivity?


A. showcdp neighbors detail
B. pingrouter_ip_address
C. showip neighbors
D. pingswitch_ip_address
E. showdhcp-config
F. showip rarp

Answer: A

Explanation:
To display detailed information about neighboring devices discovered using Cisco Discovery
Protocol (CDP), use the show cdp neighbors privileged EXEC command.
Detail - (Optional) Displays detailed information about a neighbor (or neighbors) including network
address, enabled protocols, hold time, and software version.
The following is sample output for the show cdp neighbors detail command.
router# show cdp neighbors detail
-------------------------
Device ID: lab-7206
Entry address( es ):
IP address: 172.19.169.83
Platform: cisco 7206VXR, Capabilities: Router
Interface: Ethernet0, Port ID (outgoing port): FastEthernet0/0/0
Holdtime : 123 sec
Version :
Cisco Internetwork Operating System Software
IOS (tm) 5800 Software (C5800-P4-M), Version 12.1(2)
Copyright (c) 1986-2002 by Cisco Systems, Inc.
advertisement version: 2
Duplex: half

---

QUESTION 3
Refer to the exhibit. The ports that are shown are the only active ports on the switch. The MAC
address table is shown in its entirety. The Ethernet frame that is shown arrives at the switch.
What two operations will the switch perform when it receives this frame? (Choose two.)


A. The frame will be forwarded out port fa0/3 only.
B. The frame will be forwarded out fa0/1, fa0/2, and fa0/3.
C. The frame will be forwarded out all the active ports.
D. The MAC address of 0000.00dd.dddd will be added to the MAC address table.
E. The MAC address of 0000.00aa.aaaa will be added to the MAC address table.

Answer: B,E

---

QUESTION 4
Refer to the exhibit. Workstation A must be able to telnet to switch SW-A through router RTA for
management purposes. What must be configured for this connection to be successful?


A. IP routing on SW-A
B. default gateway on SW-A
C. VLAN 1 on RTA
D. cross-over cable connecting SW-A and RTA

Answer: B

Explanation:
Configure a default gateway on SW-A.
In order for a switch to send traffic to a destination that is not located directly, as is the case in our
example, a default gateway must be configured on the switch. This will enable it to send the traffic
to router RTA where it can be routed to host A.

---

QUESTION 5
What does the "Inside Global" address represent in the configuration of NAT?

A. a globally unique, private IP address assigned to a host on the inside network
B. the summarized address for all of the internalsubnetted addresses
C. a registered address that represents an inside host to an outside network
D. the MAC address of the router used by inside hosts to connect to the Internet

Answer: C

Explanation:
With NAT, Cisco defines 4 different types of addresses as follows:
Inside local address - The IP address assigned to a host on the inside network. This is the address
configured as a parameter of the computer's OS or received via dynamic address allocation
protocols such as DHCP. The address is likely not a legitimate IP address assigned by the
Network Information Center (NIC) or service provider.
Inside global address - A legitimate IP address assigned by the NIC or service provider that
represents one or more inside local IP addresses to the outside world.
Outside local address - The IP address of an outside host as it appears to the inside network. Not
necessarily a legitimate address, it is allocated from an address space routable on the inside.
Outside global address - The IP address assigned to a host on the outside network by the host's
owner. The address is allocated from a globally routable address or network space.
The above definitions still leave a lot to be interpreted. For this example, this document redefines
these terms by first defining "local address" and "global address." Keep in mind that the terms
"inside" and "outside" are NAT definitions. Interfaces on a NAT router are defined as "inside" or
"outside" with the NAT configuration commands, ip nat inside and ip nat outside . Networks to
which these interfaces connect can then be thought of as "inside" networks or "outside" networks,
respectively.
Local address - A local address is any address that appears on the "inside" portion of the
network.
Global address - A global address is any address that appears on the "outside" portion of the
network.

640-822 Q & A / Study Guide

Best CCNA Training and CCNA Certification and more Cisco exams log in to Certkingdom.com

---

QUESTION 1
After the router interfaces shown in the diagram have been configured, it is discovered that hosts
in the Branch LAN cannot access the Internet. Further testing reveals additional connectivity
issues. What will fix this problem?


A. Change the address of the HQ router LAN interface.
B. Change the subnet mask of the HQ router LAN interface.
C. Change the address of the Branch router LAN interface.
D. Change the address of the HQ router interface to the Internet.
E. Change the address of the Branch router WAN interface.
F. Change the subnet mask of the HQ router interface to the Internet.

Answer: E

---

QUESTION 2
Refer to the graphic. A Cisco router and a Catalyst switch are connected as shown. The technician
is working on a computer that is connected to the management console of the switch. In order to
configure the default gateway for the switch, the technician needs to learn the IP address of the
attached router interface. Which IOS command will provide this information in the absence of
Layer 3 connectivity?


A. showcdp neighbors detail
B. pingrouter_ip_address
C. showip neighbors
D. pingswitch_ip_address
E. showdhcp-config
F. showip rarp

Answer: A

Explanation:
To display detailed information about neighboring devices discovered using Cisco Discovery
Protocol (CDP), use the show cdp neighbors privileged EXEC command.
Detail - (Optional) Displays detailed information about a neighbor (or neighbors) including network
address, enabled protocols, hold time, and software version.
The following is sample output for the show cdp neighbors detail command.
router# show cdp neighbors detail
-------------------------
Device ID: lab-7206
Entry address( es ):
IP address: 172.19.169.83
Platform: cisco 7206VXR, Capabilities: Router
Interface: Ethernet0, Port ID (outgoing port): FastEthernet0/0/0
Holdtime : 123 sec
Version :
Cisco Internetwork Operating System Software
IOS (tm) 5800 Software (C5800-P4-M), Version 12.1(2)
Copyright (c) 1986-2002 by Cisco Systems, Inc.
advertisement version: 2
Duplex: half

---

QUESTION 3
Refer to the exhibit. The ports that are shown are the only active ports on the switch. The MAC
address table is shown in its entirety. The Ethernet frame that is shown arrives at the switch.
What two operations will the switch perform when it receives this frame? (Choose two.)


A. The frame will be forwarded out port fa0/3 only.
B. The frame will be forwarded out fa0/1, fa0/2, and fa0/3.
C. The frame will be forwarded out all the active ports.
D. The MAC address of 0000.00dd.dddd will be added to the MAC address table.
E. The MAC address of 0000.00aa.aaaa will be added to the MAC address table.

Answer: B,E

---

QUESTION 4
Refer to the exhibit. Workstation A must be able to telnet to switch SW-A through router RTA for
management purposes. What must be configured for this connection to be successful?


A. IP routing on SW-A
B. default gateway on SW-A
C. VLAN 1 on RTA
D. cross-over cable connecting SW-A and RTA

Answer: B

Explanation:
Configure a default gateway on SW-A.
In order for a switch to send traffic to a destination that is not located directly, as is the case in our
example, a default gateway must be configured on the switch. This will enable it to send the traffic
to router RTA where it can be routed to host A.

---

QUESTION 5
What does the "Inside Global" address represent in the configuration of NAT?

A. a globally unique, private IP address assigned to a host on the inside network
B. the summarized address for all of the internalsubnetted addresses
C. a registered address that represents an inside host to an outside network
D. the MAC address of the router used by inside hosts to connect to the Internet

Answer: C

Explanation:
With NAT, Cisco defines 4 different types of addresses as follows:
Inside local address - The IP address assigned to a host on the inside network. This is the address
configured as a parameter of the computer's OS or received via dynamic address allocation
protocols such as DHCP. The address is likely not a legitimate IP address assigned by the
Network Information Center (NIC) or service provider.
Inside global address - A legitimate IP address assigned by the NIC or service provider that
represents one or more inside local IP addresses to the outside world.
Outside local address - The IP address of an outside host as it appears to the inside network. Not
necessarily a legitimate address, it is allocated from an address space routable on the inside.
Outside global address - The IP address assigned to a host on the outside network by the host's
owner. The address is allocated from a globally routable address or network space.
The above definitions still leave a lot to be interpreted. For this example, this document redefines
these terms by first defining "local address" and "global address." Keep in mind that the terms
"inside" and "outside" are NAT definitions. Interfaces on a NAT router are defined as "inside" or
"outside" with the NAT configuration commands, ip nat inside and ip nat outside . Networks to
which these interfaces connect can then be thought of as "inside" networks or "outside" networks,
respectively.
Local address - A local address is any address that appears on the "inside" portion of the
network.
Global address - A global address is any address that appears on the "outside" portion of the
network.

---

QUESTION 6
Refer to the exhibit. What does the address 192.168.2.167 represent?


A. the router to which the file startup-config is being transferred
B. the TFTP server from which the file router-confg is being transferred
C. the TFTP server to which the file router-confg is being transferred
D. the TFTP server from which the file startup-config is being transferred
E. the router from which the file startup-config is being transferred
F. the router to which the file router-confg is being transferred

Answer: C

---

QUESTION 7
Two routers named Atlanta and Brevard are connected by their serial interfaces as shown in the
exhibit, but there is no data connectivity between them. The Atlanta router is known to have a
correct configuration. Given the partial configurations shown in the exhibit, what is the problem on
the Brevard router that is causing the lack of connectivity?


A. The bandwidth setting is incompatible with the connected interface.
B. The maximum transmission unit (MTU) size is too large.
C. The subnet mask is incorrect.
D. The serial line encapsulations are incompatible.
E. A loopback is not set.
F. The IP address is incorrect.

Answer: F

---

QUESTION 8
The administrator is unable to establish connectivity between two Cisco routers. Upon reviewing
the command output of both routers, what is the most likely cause of the problem?


A. Username/password is incorrectly configured.
B. Router names are incorrectly configured.
C. Serialip addresses
D. Authentication needs to be changed to PAP for both routers.

Answer: A

Explanation:
When setting up local password database in CHAP, configure commands username username
password password in overall configuration mode to add note to local password database. Note
that the username here should be the router name on the opposite side. And the password should
be the same as that in the password database of CHAP authentication server. The above graphic
shows different password.

---

QUESTION 9
Which of the following are types of flow control? (Choose three.)

A. cut-through
B. load balancing
C. congestion avoidance
D. buffering
E. windowing

Answer: C,D,E

Best CCNA Training and CCNA Certification and more Cisco exams log in to Certkingdom.com

Cisco CCENT Certification

Cisco CCENT Certification
Cisco Certified Entry Networking Technician (CCENT) validates the ability to install, operate and troubleshoot a small enterprise branch network, including basic network security. With a CCENT, network professional demonstrates the skills required for entry-level network support positions - the starting point for many successful careers in networking. The curriculum covers networking fundamentals, WAN technologies, basic security and wireless concepts, routing and switching fundamentals, and configuring simple networks. CCENT is the first step toward achieving CCNA, which covers medium size enterprise branch networks with more complex connections.

CCENT Prerequisites : No prerequisites

CCENT Exams & Recommended Training Required Exam(s)
640-822 ICND1 Interconnecting Cisco Networking Devices Part 1 (ICND1)

CCENT Recertification
CCENT certifications are valid for three years. To recertify, pass ONE of the following exams before the certification expiration date:
Pass the current ICND1 exam, or
Pass the current ICND2 exam , or
Pass the current CCNA exam, or
Pass the current CCDA exam, or
Pass any current CCNA Concentration exam (wireless, or security, or voice, or SP Ops), or
Pass any current 642-XXX professional level exam, or
Pass any current Cisco Specialist exam (excluding Sales Specialist exams or MeetingPlace Specialist exams or Implementing Cisco Telepresence Installations [ITI] exams), or
Pass any current CCIE Written Exam, or
Pass the current CCDE Written Exam OR current CCDE Practical Exam, or
Pass the Cisco Certified Architect (CCAr) interview AND the CCAr board review to extend lower certifications

Best CCNA Training and CCNA Certification and more Cisco exams log in to Certkingdom.com